[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PFS negotiation

To: ipsec@tis.com
Subject: PFS negotiation
From: Roy Shamir <roy@CheckPoint.COM>
Date: Sun, 12 Oct 1997 17:59:53 +0100
Cc: anx-sec@dot.netrex.net
Sender: owner-ipsec@ex.tis.com

Two related questions:

1) In aggressive mode, how can two parties negotiate the Diffie-Hellman
group? Since the key payload is sent in the same packet as the SA payload,
and you can't have two key payloads, I'm not sure this can be done.

2) In quick mode, how can two parties negotiate the use of PFS? If 
they decide to use PFS, how can they negotiate the Diffie-Hellman group?
In the latter case the resolution draft (ver. 4) states (section 5.4): "If a 
KE payload is sent, a Diffie-Hellman group ... MUST be sent as attributes 
of the SA being negotiated". This implies that it is illegal to have two
proposals, one with a group attribute and one without.

Is this something that should be fixed, or is the intent that the initiator
always decides which group to use and whether to use PFS?

Roy Shamir
Check Point Software Tech. Ltd.

Follow-Ups:

PFS negotiation

From: Tero Kivinen <kivinen@ssh.fi>

Prev by Date: Re: IPsec -- SPI ranges
Next by Date: Re: What do you do in case of initiate collisions?
Prev by thread: Re: IPsec -- SPI ranges
Next by thread: PFS negotiation
Index(es):
- Main
- Thread